Epicareer Might not Working Properly
Learn More
Please Turn on your JavaScript

Epicareer might not working properly because your browser javascript is turned off.

What is JavaScript?

JavaScript is like the magic behind making websites interactive. Basically, it makes Epicareer more enjoyable and engaging.
How do i turn this on?
Find tutorial for your browser below :
  1. Make sure the webpage is open.
  2. In the Safari app on your Mac, choose Safari > Preferences, then click Security.
  3. Make sure the Enable JavaScript checkbox is selected.
  4. Click Websites.
  5. On the left, click Content Blockers.
  6. Make sure Off is chosen in the pop-up menu next to the website.
  7. On the left, click Pop-up Windows.
  8. Make sure Allow is chosen in the pop-up menu next to the website.
Visit Site here
  1. Open Chrome on your computer.
  2. Click. then Settings.
  3. Click Privacy and Security.
  4. Click Site settings.
  5. Click JavaScript.
  6. Select Sites can use Javascript.
Visit Site here
  1. If you're running Windows OS, in the Firefox window, click Tools > Options.
  2. Tip: If you're running Mac OS, click the Firefox drop-down list > Preferences.
  3. On the Content tab, click the Enable JavaScript check box.
Visit Site here
  1. Click the "Settings and more" icon at the top right of the Edge browser window.
  2. Click Settings.
  3. From the Settings menu, click Cookies and site permissions.
  4. Scroll down and click on JavaScript.
  5. In the JavaScript window, toggle the slider to "on" or "allowed."
  6. Close the Settings tab.
  7. Refresh the page.
Visit Site here
  1. Go to Settings.
  2. Click Advanced in the left sidebar, and click Privacy & security.
  3. Under Privacy and security, click Site settings.
  4. Click JavaScript.
  5. At the top, turn on or off Allowed (recommended).
Visit Site here
Any Question? Contact us
logo
Jobs or company...
F

Cybersecurity Senior Subject Matter Expert (SME)

Salary undisclosed

Apply on

Dice

Availability Status

This job is expected to be in high demand and may close soon. We’ll remove this job ad once it's closed.

Original
Simplified
FEDITC, LLC is a fast-growing business supporting DoD and other intelligence agencies worldwide. FEDITC develops mission critical national security systems throughout the world directly supporting the Warfighter, DoD Leadership, & the country. We are proud & honored to provide these services.
Overview of position:
FEDITC is seeking a Cybersecurity Senior Subject Matter Expert (SME) to work in the Fort Huachuca, Arizona area.A United States Citizenship and an active Secret DoD Security Clearance is required to be considered for this position.
This is an upcoming opportunity contingent on contract award.
Responsibilities:
  • Perform cybersecurity services to secure DODIN-A information systems and networks (NIPRNet, SIPRNet). Cyber and physical security services include Vulnerability Management, Access Management, Physical access control, Security Assistance Visits (SAVs) support, System authorization/Risk Management Framework (RMF) and CSSP support, and documenting security processes for Government review/approval.
  • Establish a vulnerability management process to identify, classify, prioritize, remediate and/or mitigate, verify, and document existing vulnerabilities to the network and information systems.
  • Establish a Vulnerability Management Plan to formalize their approach in maintaining, enhancing, and verifying the security posture of the network. This plan shall include discovery scanning and triage, authenticated active scanning, passive scanning, and remediation.
  • Review and update the Vulnerability Management Plan quarterly necessary to ensure an inclusive approach regarding emerging vulnerabilities and risks.
  • Perform weekly vulnerability scans for all services for which the GCC provides O&M support and coordinate any findings with GCC system, network owners, or NETCOM Capability Managers for corrective action.
  • Properly apply patches to remediate devices.
  • Use IAVMs and other published guidance for vulnerability tracking and remediation.
  • Record all scans and actions taken, to include POA&M and mitigation plans, in DoD and/or other GCC approved tracking system.
  • Track all published IAVAs with GCC current vulnerability status and maintain the IAVM compliance information in the Army/DoD designated tool.
  • Prepare any IAVA impact statements, extension requests, scorecards, and compliance reporting on a weekly basis.
  • Scan systems and ensure system owners comply with IAVAs by prescribed suspense dates on all GCC managed systems and/or devices.
  • Verify GCC system owner security policy and IAVM compliance through regular network audits per existing regulatory guidance and policies.
  • Provide a monthly report summarizing audit findings to include issue, prioritization, and remediation.
  • Identify, analyze, and report any security breaches, to include virus reports, spillage, security leaks, or password compromise.
  • Notify Government of any security concerns within two (2) hours, remediate the issue, and provide a security incident report on the issue through closure.
  • Develop and maintain a repository of all required documentation validating compliance with CSSP accreditation requirements.
  • Create and maintain documentation for CSSP accreditation requirements.
  • Maintain CSSP compliance per the current version of DoD Cybersecurity Services Evaluator Scoring Matrix.
  • Perform as the listing Registrar for all Army JFHQ DoDIN DMZ IAP commercial access points (websites, VPNs, etc.) within the boundaries of GCC s AOR. Duties will consist of monitoring, updating, verifying, coordinating, and submitting Army's list Applications to DISA for organizations requesting service IAW policy and/or directives set forth by DISA, and/or NETCOM.
  • Support management services for all accounts, credentials, badges, and network access for personnel and coordinate access revocations with the Government upon expiration of orders.
  • Create and maintain SharePoint groups and roles IAW established security policies.
  • Support site collection and content management on NETCOM-managed Army DoDIN networks.
  • Track site collection, site collection managers, and web application managers list to ensure all site/content/web managers are on appointment orders and have sufficient permissions to execute the management mission, via DD Form 2875.
  • Develop and disseminate the site collection and web administrators and content manager s Guide using best practices and Government guidance.
  • Ensure organizational hierarchical permissions are in place, maintained, and support mission requirements.
  • Draft site/content/web management ETP, policies, and guides for Government approval.
  • Manage certification and training requirements required for account/network access (privileged/non-privileged) and any other training specified.
  • Provide a monthly GCC training and certification compliance report to the Government.
  • Support security management in the In and Out processing of all GCC personnel to include account issuance and closure, issuance and collection of badges, tokens, and keys, etc.
  • Provide a monthly report to the Government which tracks in and out processing for all items.
  • Support the Security Manager with physical security and access control for the GCC NOF and extended facilities/rooms within Greely Hall in compliance with all existing policy and regulatory guidance.
  • Provide support to secure the facility and the proper labelling of control of data (unclassified, classified, controlled unclassified information (CUI), and personally identifiable information (PII)).
  • Use currently approved security system to validate Visitor Access Requests (VARs). See DD-254 for additional guidance.
  • Support periodic walk-throughs and monthly self-inspections to ensure adherence to established security procedures and policy within the GCC. This includes security control procedures for open storage, storage of classified and restricted devices, such as cellphones, smart watches, certain fitness trackers, etc., and provide the results to the Government within five (5) working days of each inspection.
  • Track remediation of all findings through closure and provide a copy to the Government Security Manager.
  • Provide visit support, and support remediation efforts on any findings of identified security inspections and assistance during GCC visits.
  • Provide a monthly CORA report documenting the GCC's current security posture with identified CORA inspection items to the COR.
  • Support escort efforts to external personnel including cleaning staff, warranty repairmen, and personnel on-site to remediate facility health and safety concerns.
  • Report escort efforts supported via a monthly report.
  • Provide escort training to any personnel supporting escort efforts.
  • Support the Government ISSM with logging and sanitization of unclassified and classified hard drives or other storage devices prior to turn-in, disposal, and/or re-issuance.
  • Other support duties as needed/directed.
Experience/Skills:
  • Must have an in-depth understanding of the technical requirements and the ability, knowledge, experience, certifications, and skills to perform those requirements at task order start date.
  • Must have equal or higher qualifications and experience.
  • Must be able to speak, read, and write English.
Education:
  • Must have a Bachelor s degree in an engineering, scientific, or technical discipline.
Certifications:
  • Certified Authorization Professional (CAP) OR
meets current DCWF qualification requirements
  • DCWF Code: 722 - Advanced
Clearance:
  • Active Secret Security Clearance is required.
  • Maintain applicable security clearance(s) at the level required by the client and/or applicable certification(s) as requested by FEDITC and/or required by FEDITC S Client(s)/Customer(s)/Prime contractor(s).
FEDITC, LLC. is committed to fostering an inclusive workplace and provides equal employment opportunities (EEO) to all employees and applicants for employment. We do not employ AI tools in our decision-making processes. Regardless of race, color, religion, sex (including pregnancy), sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran. FEDITC, LLC. ensures that all employment decisions are made in accordance with applicable federal, state, and local laws. Our commitment to non-discrimination in employment extends to every location in which our company operates.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job
Similar Jobs